Only in the Bay area: Last night I was down at the Mountain View In-n-Out Burger enjoying a double and chocolate shake when I ran into Paul Martino, CTO of Tribe, and his lovely wife. We were both on the “Open Source Infrastructure” panel just last week. Tribe is doing some neat things with open data and standards, it’s time to check them out again.

So there is an Open Source Business Conference happening in a few weeks a few blocks away from me and I just randomly came across the site. After SxSW, reading about OSBC is like being in another world: it’s $1500 to go, only two days long, the language on the site is sickeningly corporate, and I haven’t heard of a single person there. Then again, this is an “open source” conference with Microsoft as a platinum sponsor. A real Open Source conference would have no fees, everything would be web streamed, the line between speakers and attendees would be thin or non-existant, and the topics would not focus so much on money. Actually, it would be a bit like Bloggercon.

Usable Security is a new blog about—you guessed it—the intersection of usability and security. This comes up every few weeks since I improved the error messages on the WordPress login (and bbPress) to specify which part of the login was mistaken, the username or the password. Security folks see this as a problem because you’re revealing more information but I see making the error message more generic as premature security optimization. Plenty of systems where login names are public or easily discoverable, such as Yahoo, Gmail, Hotmail, most email systems, and so forth, seem to be doing just fine.